Encryption 
session 
requested 




Client sends 
a SSL hello 
message 



Web Server 
receives the client 
hello message and 
responds with a 
Web Server hello 

message 
containing a server 
public key 



Client receives the 
Web Server 
messages and 
public key 



The Client picks a 
random number R 
(48 Byte) 



The Client uses 
the public key to 

encrypt the 
random number R 



The Client sends the 
encrypted R to the 

Web Server 
(Pre-Master Secret) 
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FIGURE 1 
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The Web Server 
receives the 
encrypted message 

from the 
Client containing R 



The Web Server 
uses the private 
key to decrypt the 
message so to 
read R 



The Web Server 
and Client, now 
both knowing R, 
use R to encrypt 
further messages 



Encryption 

session 
established 
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Server generates RSA 
public/ private key pair 
<N, e> by 



FIGURE 2 



Web Server generates two 
distinct primes, p and q 
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Server picks two random 
values ft and r 2 
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Server computes d 
such that 
d = r^mod p - 1 
d = r,mod q - 1 
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Public Key is <N, e x > 
Private Key is <r x r 2 > 
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Client uses web server's 
public key to encrypt the 
pre-master-secret, R; 
R encrypted = C 



Web Server receives the 
encrypted pre-master- 
secret C and decrypts 
using the private key <rj x 2 > 
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Web Server computes Ri and R 1 
such that Rl = Q mod p and 
2 mod q 



R' 2 =c 
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Web Server computes R such 
that R = R[ mod p and 
R" = R^ mod q 
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Web Server uses decrypted 
pre-master-secret R to establish 
session encryption key 



Web Server generates an 
RSA public/ private key pair <N, e> 



Web Server generates two 
distinct primes, p and q 



Web Server computes N 1 = p 2 q 



Web Server uses the same 
encryption exponent e as 
a standard RSA 



Web Server computes d such that 
d = e 1 mod(p-1)(q-1) 



Web Server computes r such that 
r t = d mod p-1 and r 2 such that 
r 2 = d mod q-1 



public key is <N 1 , e> 
private key is <r v r 2 > 



Client uses public key <N\ e> to 
encrypt the pre-master secret R 
R encrypted = C 
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FIGURE 3 



Web Server receives 
encrypted pre-master secret R 



Web Server decrypts 
the pre-master secret R 



Web Server computes R^ such that 
R^ C fl mod p and R' 2 such that 
R' 2 = C r2 mod q 



Web Server constructs R" such that 
(R;)*=Cmod p 2 



Web Server computes R such that 
R = R"modp 2 and 
R = R 2 mod q 



Web Server uses decrypted 
pre-master secret R to establish 
a session key with client 
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Web server 
process #1 
using (N, 3) 



Web server 
process #2 
using (A/, 5) 



Web server 
process #3 
using (/V, 7) 



Web server 
process #4 
using {N, 11) 
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Batch server process. Will batch any two distinct requests. 
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Encrypted X 1 1 q 
session 
requested 



Send 
Client helio 



FIGURE 6 
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Send Server Hello 
include RSA 
public key 
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Client picks 
random string R, 
Encrypts using 
RSA public key 
Send Client Key 
Exchange 
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Web Server 
receives the 
encrypted 
message from 
client containing R 



Web Server uses 
Private key to 
decrypt the 
message and 
obtain R 



Balance the 
exponents 
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Extract the e th 
root of the 
combined 
messages 



Determine a 
common root 



Reduce the 
number of ^ 
inversions by 
conducting 
delayed division 



Reduce the 
number of 
inversions by 
conducting 
batched division 



Separate the . 

parallel batch 
trees, compute, 
and combine the 

final answers 
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Use Simultaneous 
Multiple Exponents 
to decrypt the 
messages 
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Break up the 
product into 
separate 
decrypted 
messages 
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Send messages to 
Server in clear text 
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Client/ Server use 

R to encrypt 
further messages 
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Encrypted 
session 
established 
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